Depending on the most recent version breaks npm security audit

Question

Depending on the most recent version breaks npm security audit

Opened this issue 5 years ago · 1 comments

Using "modernizr-webpack-plugin" as a dependency breaks NPM security audit with 1 moderate and 2 low severity vulnerability. Should update lodash and clean-css packages to their most recent versions.

Answer 1 · 2019-06-01T07:12:14.000Z

html-webpack-plugin should become a peerDependency.